RHEL 6 : spacewalk-java (RHSA-2014:1184)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:1184 advisory. Red Hat Satellite is a systems management tool for Linux-based infrastructures. It allows for provisioning, monitoring, and remote management of...

RHSA-2016:1484 Red Hat Security Advisory: spacewalk-java security and bug fix update

Bulletin has no description...

RHSA-2016:0590 Red Hat Security Advisory: spacewalk-java security update

Bulletin has no description...

RHSA-2015:0957 Red Hat Security Advisory: spacewalk-java security update

Bulletin has no description...

RHSA-2011:0879 Red Hat Security Advisory: Red Hat Network Satellite server spacewalk-java security update

Bulletin has no description...

RHSA-2014:1762 Red Hat Security Advisory: spacewalk-java security update

Bulletin has no description...

RHSA-2014:1184 Red Hat Security Advisory: spacewalk-java security update

Bulletin has no description...

RHSA-2013:1514 Red Hat Security Advisory: spacewalk-java security update

Bulletin has no description...

openSUSE: Security Advisory for installation-images (SUSE-SU-2023:1831-1)

The remote host is missing an update for the installation-images packages announced via the SUSE-SU-2023:1831-1 advisory. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

SUSE Manager Log Information Disclosure Vulnerability

SUSE Manager is a Linux server management system from SUSE Germany. The system provides automated software management, system configuration and monitoring. A log information disclosure vulnerability exists in SUSE Manager Server Module versions prior to 4.2 4.2.50-150300.3.66.5, 4.3...

SUSE SLES15 Security Update : spacewalk-java (SUSE-SU-2022:3880-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3880-1 advisory. - An Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in spacewalk/Uyuni of SUSE Linux Enterprise...

SUSE CVE-2009-4139

A flaw was found in Spacewalk Java site packages. This cross-site request forgery CSRF vulnerability allows a remote attacker to hijack the authentication of arbitrary users. This can lead to unauthorized actions, including disabling user accounts, adding new user accounts, or escalating privileg...

SUSE CVE-2010-2236

The monitoring probe display in spacewalk-java before 2.1.148-1 and Red Hat Network RHN Satellite 4.0.0 through 4.2.0 and 5.1.0 through 5.3.0, and Proxy 5.3.0, allows remote authenticated users with permissions to administer monitoring probes to execute arbitrary code via unspecified vectors,...

SUSE CVE-2013-1869

CRLF injection vulnerability in spacewalk-java before 2.1.148-1 and Red Hat Network RHN Satellite 5.6 allows remote attackers to inject arbitrary HTTP headers, and conduct HTTP response splitting attacks and cross-site scripting XSS attacks, via the returnurl parameter...

SUSE CVE-2014-3595

Cross-site scripting XSS vulnerability in spacewalk-java 1.2.39, 1.7.54, and 2.0.2 in Spacewalk and Red Hat Network RHN Satellite 5.4 through 5.6 allows remote attackers to inject arbitrary web script or HTML via a crafted request that is not properly handled when logging...

SUSE CVE-2014-3654

Multiple cross-site scripting XSS vulnerabilities in spacewalk-java 2.0.2 in Spacewalk and Red Hat Network RHN Satellite 5.5 and 5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to 1 kickstart/cobbler/CustomSnippetList.do, 2...

SUSE CVE-2015-0284

Cross-site scripting XSS vulnerability in spacewalk-java in Spacewalk and Red Hat Satellite 5.7 allows remote authenticated users to inject arbitrary web script or HTML via crafted XML data to the XMLRPC API, involving user details. NOTE: this vulnerability exists because of an incomplete fix for...

SUSE CVE-2016-3080

Cross-site scripting XSS vulnerability in spacewalk-java in Red Hat Satellite 5.7 allows remote attackers to inject arbitrary web script or HTML via the 1 RHNMD User or 2 Filesystem parameters, related to display of monitoring probes...

SUSE CVE-2016-3097

Cross-site scripting XSS vulnerability in spacewalk-java in Red Hat Satellite 5.7 allows remote attackers to inject arbitrary web script or HTML via a group name, related to viewing snapshot data...

SUSE CVE-2022-21952

A Missing Authentication for Critical Function vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUSE Manager Server 4.2 allows remote attackers to easily exhaust available disk resources leading to DoS. This issue affects: SUSE Manager Server 4.1 spacewalk-java versions prior to 4.1.46...